$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: iaNyDjKiq1OXdkEwc1JcjxTbMwMGm0uOYSa31q0ROmw= Subject key identifier: AC:E0:9D:34:EF:80:29:6A:57:76:17:06:2F:A7:FF:5A:D9:02:5B:3B Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 0674 Signing time: Sat 04 Apr 2026 22:20:26 +0000 Manifest this update: Sat 04 Apr 2026 22:20:26 +0000 Manifest next update: Sat 11 Apr 2026 22:20:26 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: TZiSgRRArPC9ISoE9c6nVQtvXxvA+r60+74YvXDKK9g=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: MfEMtWr//IKbjBbDvwQq3pr8MLGlDee0A9/222366Gk=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: hmAGFwidME91Z2OtLaYKm7U/7KLzuVveNkUXIAOlTec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Apr 4 22:20:26 2026 GMT Not After : Apr 11 22:20:26 2026 GMT Subject: CN=69d18eaa-d6a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8d:b4:f5:c7:4c:be:8b:2e:f4:5c:d4:56:40: d6:b4:ac:1e:3d:33:13:43:c8:0b:cb:d6:a2:4a:57: a2:0f:62:4a:c0:4a:f2:bb:e9:9a:dc:66:10:17:0a: 59:a3:63:0e:2f:90:e7:d4:34:2c:42:3a:4a:7e:80: 3f:08:77:c2:34:93:bf:20:44:04:cd:c7:df:fd:0d: 78:b3:38:03:25:58:17:8d:25:27:30:b2:0a:c0:30: 68:e7:dc:9f:6e:b3:84:2a:76:d9:86:ec:f3:28:e8: b5:0c:ea:58:f6:10:53:3c:14:9c:2d:91:f4:fd:8f: c8:66:94:a9:5c:35:14:5d:21:24:49:91:68:f8:58: ec:71:ed:14:00:3a:15:a8:b0:bb:71:17:d6:09:63: 6f:1c:ae:02:ef:e9:58:57:67:cc:22:39:d5:26:f4: 28:01:f0:28:7c:3d:97:7d:90:20:1c:0e:ba:dc:54: 2c:17:f7:3a:64:f4:f3:f6:73:a5:ba:0f:9f:e8:eb: 5a:45:9c:04:c5:1b:58:90:4c:5f:a6:49:13:77:ec: 34:44:14:62:4e:1e:b8:bd:de:a7:72:97:98:ac:ca: c2:4f:45:7a:12:8d:d5:c8:ae:bf:46:ce:af:63:53: 93:af:27:92:f0:f9:96:e2:cd:4e:da:91:3a:38:33: 8f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E0:9D:34:EF:80:29:6A:57:76:17:06:2F:A7:FF:5A:D9:02:5B:3B X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:f7:69:50:3c:7b:c8:d0:64:8f:6d:d6:26:28:ab:85:55:ec: f1:6f:7f:c7:6d:81:ec:76:75:c7:e4:9f:ab:10:a3:7d:be:a1: 4b:66:65:76:78:35:c8:66:40:c6:01:87:ce:70:b2:7f:28:f9: 92:fe:69:f9:c5:1e:1d:cb:ac:7b:c5:10:1b:7f:f0:06:ec:26: 13:22:9f:9a:55:c5:53:b5:0d:59:c3:a0:5d:56:07:a8:7f:60: 38:11:51:ac:98:6a:47:2d:c9:22:e3:f0:f2:30:2f:00:4a:a6: d9:78:3c:66:6d:f5:bd:34:72:9e:c5:ca:e5:36:52:a5:b1:cd: 5b:c6:e3:2c:28:59:4f:3f:f1:3b:f7:42:29:ab:43:d5:2c:1a: 3c:c3:94:ad:92:a8:da:95:98:49:e8:0a:ef:7a:01:3f:9b:4d: c4:f3:96:de:ea:4d:9c:11:07:c1:7b:fb:c8:9f:d6:c2:44:fe: b9:ff:a9:40:b4:46:07:8b:45:1d:d5:6f:0a:7a:2c:8c:ee:53: 95:85:24:1a:48:e7:0a:cf:f9:a1:8a:1d:b0:3e:3a:63:e8:31: 79:e9:f6:67:b1:f8:ff:dc:93:b6:70:9d:aa:46:65:ed:da:f4: fa:b9:4e:af:cf:53:c2:87:1f:ab:12:9f:ce:4d:79:55:12:6e: fb:64:99:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjYwNDA0MjIyMDI2WhcNMjYwNDExMjIyMDI2WjAYMRYwFAYD VQQDEw02OWQxOGVhYS1kNmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzI209cdMvosu9FzUVkDWtKwePTMTQ8gLy9aiSleiD2JKwEryu+ma3GYQFwpZ o2MOL5Dn1DQsQjpKfoA/CHfCNJO/IEQEzcff/Q14szgDJVgXjSUnMLIKwDBo59yf brOEKnbZhuzzKOi1DOpY9hBTPBScLZH0/Y/IZpSpXDUUXSEkSZFo+Fjsce0UADoV qLC7cRfWCWNvHK4C7+lYV2fMIjnVJvQoAfAofD2XfZAgHA663FQsF/c6ZPTz9nOl ug+f6OtaRZwExRtYkExfpkkTd+w0RBRiTh64vd6ncpeYrMrCT0V6Eo3VyK6/Rs6v Y1OTryeS8PmW4s1O2pE6ODOP5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKzgnTTv gClqV3YXBi+n/1rZAls7MB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl/dpUDx7yNBkj23WJiirhVXs8W9/x22B7HZ1x+SfqxCjfb6hS2Zldng1yGZA xgGHznCyfyj5kv5p+cUeHcuse8UQG3/wBuwmEyKfmlXFU7UNWcOgXVYHqH9gOBFR rJhqRy3JIuPw8jAvAEqm2Xg8Zm31vTRynsXK5TZSpbHNW8bjLChZTz/xO/dCKatD 1SwaPMOUrZKo2pWYSegK73oBP5tNxPOW3upNnBEHwXv7yJ/WwkT+uf+pQLRGB4tF HdVvCnosjO5TlYUkGkjnCs/5oYodsD46Y+gxeen2Z7H4/9yTtnCdqkZl7dr0+rlO r89TwocfqxKfzk15VRJu+2SZAg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:15 2026 by rpki-client